Transforming the Electronics Industry, Making Security Accessible
It is critical that every trusted operation in a device takes place securely upon components with a critical baseline of security. But security isn’t simple, and as devices scale, we can’t scale the expertise needed to secure solutions.
PSA Certified is transforming the electronics industry and making complex security functions accessible. Using PSA Certified silicon and PSA Certified APIs, the security functions in the PSA Root of Trust can be leveraged, creating a space where all trusted functions can happen.
The PSA Certified APIs make it quicker and easier for the ecosystem to port to the chip’s Root of Trust and connect trusted services to the system software.
Reducing the Total Cost of Ownership
The PSA Certified APIs lower security research and development costs, reduce business and reputational risk and help customers maximize ROI with open source, reusable code
Lower the Bar to Expert Security
Leverage the security built into the PSA Root of Trust by silicon vendors, saving time and costs by calling the APIs.
Reduce Security Fragmentation
PSA Certified has been widely adopted by leading silicon providers and system software vendors. Join the ecosystem that is providing standardized components.
Vendors who decide to implement the PSA Certified APIs can validate compliance with test suites and obtain a certification. API compatibility certificates are visible on the Certified Products page.
There are two badges available for API compliance, issued by PSA Certified:
- PSA Certified API Compliance, for chip vendors, system software vendors and device manufacturers.
- PSA Certified Crypto API Compliance, for crypto vendors.
PSA Certified API Compliance recognizes the fact that chip and system software vendors are offering security services through user-facing APIs that comply with the recommended PSA Certified specifications. To receive the PSA Certified API Compliance badge you must support the PSA Certified Crypto API, PSA Certified Storage API (ITS, PS, or both), and optionally the PSA Certified Attestation API and PSA Certified Firmware Update API. Chips that run TF-M are automatically compliant with PSA Certified APIs since TF-M is a reference implementation.
Note: Compliance with PSA Certified APIs is not necessary to achieve PSA Certified security evaluation.
Getting Started with PSA Certified API Compliance
PSA Certified Crypto API Compliance identifies crypto software and hardware products that comply with the PSA Certified Crypto API specifications. This includes software libraries accessible through the PSA Certified Crypto API, and crypto hardware such as accelerators, secure elements and other trusted subsystems that offers crypto-related services.
Read more here about PSA Certified Crypto API compliance.
Learn more about PSA Certified Crypto API Compliance